Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20181205 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaThunderbird (60.3.1 -> 60.3.2) PackageKit (1.1.10 -> 1.1.12) bluedevil5 (5.14.3 -> 5.14.4) breeze (5.14.3 -> 5.14.4) breeze-gtk (5.14.3 -> 5.14.4) breeze4-style (5.14.3 -> 5.14.4) discover (5.14.3 -> 5.14.4) drkonqi5 (5.14.3 -> 5.14.4) f2fs-tools (1.10.0 -> 1.12) ghostscript (9.25 -> 9.26) graphviz graphviz-addons kactivitymanagerd (5.14.3 -> 5.14.4) kcm_sddm (5.14.3 -> 5.14.4) kde-cli-tools5 (5.14.3 -> 5.14.4) kde-gtk-config5 (5.14.3 -> 5.14.4) kde-user-manager (5.14.3 -> 5.14.4) kdevelop5 kgamma5 (5.14.3 -> 5.14.4) khotkeys5 (5.14.3 -> 5.14.4) kinfocenter5 (5.14.3 -> 5.14.4) kirigami2 kmenuedit5 (5.14.3 -> 5.14.4) kscreen5 (5.14.3 -> 5.14.4) kscreenlocker (5.14.3 -> 5.14.4) ksshaskpass5 (5.14.3 -> 5.14.4) ksysguard5 (5.14.3 -> 5.14.4) kwayland-integration (5.14.3 -> 5.14.4) kwin5 (5.14.3 -> 5.14.4) libkdecoration2 (5.14.3 -> 5.14.4) libkscreen2 (5.14.3 -> 5.14.4) libksysguard5 (5.14.3 -> 5.14.4) libreoffice mailutils milou5 (5.14.3 -> 5.14.4) osinfo-db (20181011 -> 20181116) oxygen5 (5.14.3 -> 5.14.4) plasma-nm5 (5.14.3 -> 5.14.4) plasma5-addons (5.14.3 -> 5.14.4) plasma5-desktop (5.14.3 -> 5.14.4) plasma5-integration (5.14.3 -> 5.14.4) plasma5-openSUSE plasma5-pa (5.14.3 -> 5.14.4) plasma5-workspace (5.14.3 -> 5.14.4) plymouth (0.9.4+git20181122.aaa140b -> 0.9.4+git20181129.a7ec3e6) polkit-kde-agent-5 (5.14.3 -> 5.14.4) powerdevil5 (5.14.3 -> 5.14.4) python-gobject (3.30.1 -> 3.30.4) samba (4.9.1+git.101.212e237d8ef -> 4.9.3+git.113.3f6a4cdc269) swig systemsettings5 (5.14.3 -> 5.14.4) vm-install (0.10.04 -> 0.10.05) wireshark (2.6.4 -> 2.6.5) === Details === ==== MozillaThunderbird ==== Version update (60.3.1 -> 60.3.2) Subpackages: MozillaThunderbird-translations-common - Fix build on openSUSE Leap 15.x w.r.t. rust-std requirement - Mozilla Thunderbird 60.3.2 * Encoding problems when exporting address books or messages using the system charset. Messages are now always exported using the UTF-8 encoding * If the "Date" header of a message was invalid, Jan 1970 or Dec 1969 was displayed. Now using date from "Received" header instead. * Body search/filtering didn't reliably ignore content of tags * Inappropriate warning "Thunderbird prevented the site (addons.thunderbird.net) from asking you to install software on your computer" when installing add-ons * Incorrect display of correspondents column since own email address was not always detected * Spurious (encoded newline) inserted into drafts and sent email ==== PackageKit ==== Version update (1.1.10 -> 1.1.12) Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module PackageKit-lang libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Update to version 1.1.12: + common: Handle quoted strings in /etc/os-release. + offline update: Fix translations to show up. + Backends: - zypp: Implement GetFilesLocal in zypp backend. - Various changes related to aptcc and dnf. - Changes from version 1.1.11: + New Features: - Add --autoremove option to pkcon. - Shutdown the daemon on idle by default. + Bugfixes: - De-register callbacks on PkClientHelper finalize. - Don't complain if command-not-found get uninstalled while running. - Fix critical on idle shutdown. - Fix issues with debconf helper not working. - Never assert when an interactive TTY is not available. - Schedule offline update service to run after system-update-pre.target. - Shut down services cleanly before rebooting after offline updates. + Backends: - Various changes related to aptcc, dnf and nix. - Drop PackageKit-get-files-local.patch: fixed upstream. ==== bluedevil5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: bluedevil5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== breeze ==== Version update (5.14.3 -> 5.14.4) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5 - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * Fix uncentered crosshairs * Improve contrast for crosshair cursors (kde#400110) ==== breeze-gtk ==== Version update (5.14.3 -> 5.14.4) Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common - Don't modify permissions of the README.md and COPYING.LIB files anymore, they have been fixed upstream a long time ago - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 - Add patch to set the default cursor theme to Breeze: * 0001-Set-the-default-cursor-theme-to-breeze_cursors.patch ==== breeze4-style ==== Version update (5.14.3 -> 5.14.4) Subpackages: libbreezecommon4-5 - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * Fix uncentered crosshairs * Improve contrast for crosshair cursors (kde#400110) ==== discover ==== Version update (5.14.3 -> 5.14.4) Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * kns: fix crash upon removing a category (kde#401435) * Don't use an icon that is only supposed for plasmoids * flatpak: Always connect to finished before running * Remove unused function * Fix global progress display for updates (kde#400891) * Avoid potential race condtion with QFutureWatcher in FWUPD backend * flatpak: remove duplicated line ==== drkonqi5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: drkonqi5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== f2fs-tools ==== Version update (1.10.0 -> 1.12) - Update to new upstream release 1.12 * resize.f2fs: fix access out-of memory boundary * mkfs.f2fs: support fsverity feature * fsck.f2fs: fix stack overflow when reading out nat block * mkfs.f2fs: avoid selinux denial for unnecessary sysfs node * fsck.f2fs: allow -p without value * mkfs.f2fs: support multiple features with one "-O" * f2fs-tools: add -g to give default options ==== ghostscript ==== Version update (9.25 -> 9.26) Subpackages: ghostscript-x11 - Version upgrade to 9.26 Highlights in this release include: * Security issues have been the primary focus of this release, including solving several (well publicised) real and potential exploits. Thanks to Man Yue Mo of Semmle Security Research Team, Jens Mueller of Ruhr-Universitaet Bochum and Tavis Ormandy of Google's Project Zero for their help to identify specific security issues. PLEASE NOTE: We (i.e. Ghostscript upstream) strongly urge users to upgrade to this latest release to avoid these issues. * The usual round of bug fixes, compatibility changes, and incremental improvements. For a release summary see: http://www.ghostscript.com/doc/9.26/News.htm For details see the News.htm and History9.htm files. The Ghostscript 9.26 release should fix (cf. the entry below dated 'Fri Sep 14 10:47:33 CEST 2018' what "should fix" means) in particular those security issues (bsc#1117331) * CVE-2018-19475: psi/zdevice2.c allows attackers to bypass intended access restrictions https://bugs.ghostscript.com/show_bug.cgi?id=700153 https://bugzilla.suse.com/show_bug.cgi?id=1117327 bsc#1117327 * CVE-2018-19476: psi/zicc.c allows attackers to bypass intended access restrictions because of a setcolorspace type confusion https://bugs.ghostscript.com/show_bug.cgi?id=700169 https://bugzilla.suse.com/show_bug.cgi?id=1117313 bsc#1117313 * CVE-2018-19477: psi/zfjbig2.c allows attackers to bypass intended access restrictions because of a JBIG2Decode type confusion https://bugs.ghostscript.com/show_bug.cgi?id=700168 https://bugzilla.suse.com/show_bug.cgi?id=1117274 bsc#1117274 * CVE-2018-19409: LockSafetyParams is not checked correctly if another device is used https://bugs.ghostscript.com/show_bug.cgi?id=700176 https://bugzilla.suse.com/show_bug.cgi?id=1117022 bsc#1117022 and those security issues * CVE-2018-18284: 1Policy operator gives access to .forceput https://bugs.ghostscript.com/show_bug.cgi?id=69963 https://bugzilla.suse.com/show_bug.cgi?id=1112229 bsc#1112229 * CVE-2018-18073: saved execution stacks can leak operator arrays https://bugs.ghostscript.com/show_bug.cgi?id=699927 https://bugzilla.suse.com/show_bug.cgi?id=1111480 bsc#1111480 * CVE-2018-17961: bypassing executeonly to escape -dSAFER sandbox https://bugs.ghostscript.com/show_bug.cgi?id=699816 https://bugzilla.suse.com/show_bug.cgi?id=1111479 bsc#1111479 * CVE-2018-17183: remote attackers could be able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code https://bugs.ghostscript.com/show_bug.cgi?id=699708 https://bugzilla.suse.com/show_bug.cgi?id=1109105 bsc#1109105 - Version upgrade to 9.26rc1 (first release candidate for 9.26). Highlights in this release include: * Purely security and a few bug fixes, there are no new features, and no API changes to report. ==== graphviz ==== Subpackages: graphviz-plugins-core libgraphviz6 - use pkg-config with correct parameter, reported by Werner Fink - Support dynamic move to Guile 2.2, part of boo#1117121: - Replace conditional pkgconfig(guile-2.[02]) BuildRequires with guile-devel: The package name is unchanged, which allows the distro projects to move wihout step-locking changes. - Patch configure.ac to look for guile-2.2 if guile 2.2 is being used. - order inputs alphabetically ==== graphviz-addons ==== Subpackages: graphviz-gd graphviz-gnome - use pkg-config with correct parameter, reported by Werner Fink - Support dynamic move to Guile 2.2, part of boo#1117121: - Replace conditional pkgconfig(guile-2.[02]) BuildRequires with guile-devel: The package name is unchanged, which allows the distro projects to move wihout step-locking changes. - Patch configure.ac to look for guile-2.2 if guile 2.2 is being used. - order inputs alphabetically ==== kactivitymanagerd ==== Version update (5.14.3 -> 5.14.4) Subpackages: kactivitymanagerd-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * drop ancient commented out code * actually initialize kcrash properly ==== kcm_sddm ==== Version update (5.14.3 -> 5.14.4) Subpackages: kcm_sddm-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kde-cli-tools5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: kde-cli-tools5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kde-gtk-config5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: kde-gtk-config5-gtk2 kde-gtk-config5-gtk3 kde-gtk-config5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kde-user-manager ==== Version update (5.14.3 -> 5.14.4) Subpackages: kde-user-manager-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kdevelop5 ==== Subpackages: kdevelop5-lang kdevplatform kdevplatform-lang libkdevplatform53 - Add kdevelop provides ==== kgamma5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: kgamma5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== khotkeys5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: khotkeys5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kinfocenter5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: kinfocenter5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kirigami2 ==== Subpackages: kirigami2-lang libKF5Kirigami2-5 - Add patch to workaround visual glitches with unaligned text (boo#1117346, kde#401174): * 0001-make-sure-scroll-views-are-pixel-aligned.patch ==== kmenuedit5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: kmenuedit5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kscreen5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: kscreen5-lang kscreen5-plasmoid - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * Prefer to set current mode in resolution combobox ==== kscreenlocker ==== Version update (5.14.3 -> 5.14.4) Subpackages: kscreenlocker-lang libKScreenLocker5 - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== ksshaskpass5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: ksshaskpass5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== ksysguard5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: ksysguard5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kwayland-integration ==== Version update (5.14.3 -> 5.14.4) - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== kwin5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: kwin5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * actually initialize kcrash for xclipboardsync * [wayland] Don't crash when resizing windows (kde#397577) * [effects/slidingpopups] Don't crash when sliding virtual desktops (kde#400170) ==== libkdecoration2 ==== Version update (5.14.3 -> 5.14.4) Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private6 - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== libkscreen2 ==== Version update (5.14.3 -> 5.14.4) Subpackages: libKF5Screen7 libkscreen2-plugin - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== libksysguard5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: libksysguard5-helper libksysguard5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== libreoffice ==== Subpackages: libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - bsc#1117300 - [DATA LOSS] Saving a new document can silently overwrite an existing document * bsc1117300.patch - boost_1_69.patch: Fix compilation with Boost 1.69 - Install also C++ libreofficekit headers bsc#1117195 - bsc#882383 - LO-L3: Chart in PPTX lacks color and is too large * bsc882383.patch ==== mailutils ==== Subpackages: libmailutils5 - Dynamic determine and use guile version in spec file ==== milou5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: milou5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== osinfo-db ==== Version update (20181011 -> 20181116) - Update database to version 20181116 osinfo-db-20181116.tar.xz ==== oxygen5 ==== Version update (5.14.3 -> 5.14.4) - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== plasma-nm5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: plasma-nm5-lang plasma-nm5-openconnect plasma-nm5-openvpn plasma-nm5-pptp plasma-nm5-vpnc - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * Openconnect: do not reload the auth dialog endlessly when group changes (kde#395157) * VPN plugins: fix broken layout when using password field * Do not request secrets for VPN connections all the time * SSH VPN: put content of the configuration into scroll area BUG: 401004 FIXED-IN: 5.14.4 (kde#401004) ==== plasma5-addons ==== Version update (5.14.3 -> 5.14.4) Subpackages: plasma5-addons-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * [comic] Correct usage of DataEngineConsumer * [comic] Fix error handling in data updated * [comic] Fix widget context menu * [KonsoleProfiles applet] Fix initial focus * [weather] Fix broken observation display for temperature of 0 � * datetime runner: Match timezones less restrictively * keyboard indicator: Fix warnings * [Comics & Weather widgets] give "Configure..." buttons icons (kde#399888) * [Media Frame] Hide back/forward buttons altogether if there is only one image * [Media Frame] Fix futureLength property * [KonsoleProfiles applet] Fix navigating with the keyboard * [DateTime Runner] Fix a copyright typo. * Use KDEFrameworkCompilerSettings ==== plasma5-desktop ==== Version update (5.14.3 -> 5.14.4) Subpackages: plasma5-desktop-lang - Add patch from Plasma/5.14 to fix the group dialog (kde#401508): * 0001-Fix-group-popup-dialog.patch - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * [Folder View] improve label contrast against challenging backgrounds (kde#361228) * [Componentchooser KCM] Make default browser app choice work even when combobox is not used (kde#350663) * Minor: Fix -Wextra-semi warning * Fix dismissing the Dashboard by clicking inbetween multi-grid categories. (kde#400720) * Revert unintended line * Compress calls to `updateSize` (kde#400364) * Remove debug ==== plasma5-integration ==== Version update (5.14.3 -> 5.14.4) Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Update to 5.14.4 ==== plasma5-pa ==== Version update (5.14.3 -> 5.14.4) Subpackages: plasma5-pa-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * Fix i18n when the kcm code is embedded in the plasmoid config ==== plasma5-workspace ==== Version update (5.14.3 -> 5.14.4) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - Changes since 5.14.3: * [DBusMenuImporter] Don't call removeAction() to avoid an empty QMenu (kde#399975) * [Baloo Runner] Filter duplicates and prefer specific type matches * [clipboard] Limit length of clipboard text item visualisation ==== plymouth ==== Version update (0.9.4+git20181122.aaa140b -> 0.9.4+git20181129.a7ec3e6) Subpackages: libply-boot-client4 libply-splash-core4 libply-splash-graphics4 libply4 plymouth-dracut plymouth-plugin-label plymouth-plugin-label-ft plymouth-plugin-script plymouth-plugin-two-step plymouth-scripts - Update to version 0.9.4+git20181129.a7ec3e6: * Add new BGRT theme, using the firmware boot splash as background * two-step: bgrt: Deal with quirky firmwares, Add ACPI BGRT extension support, Speed up background-tile drawing on HiDPI screens, Use a pixel-buffer instead of an image for the view's background * ply-pixel-buffer: Add ply_pixel_buffer_rotate_upright helper, Add ply_pixel_buffer_get/set_device_rotation helpers, Fix marking buffers as opaque when doing a solid fill, Fix fill_with_buffer fastpath when device_scale != 1. ==== polkit-kde-agent-5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: polkit-kde-agent-5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== powerdevil5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: powerdevil5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== python-gobject ==== Version update (3.30.1 -> 3.30.4) Subpackages: python2-gobject python3-gobject python3-gobject-Gdk python3-gobject-cairo - Update to version 3.30.4: + gtk overrides: Fix rows getting inserted on the wrong level with TreeStore.insert_before/inster_after if parent=None. - Update to version 3.30.3: + GValue: fall back to the custom C marshaller to support fundamental types. This makes GValue work with GstFraction. + GValue: Work around wrong annotations for GVariant. + Fix GObject attribute access during instance init which can lead to errors with __getattr__ implementations of subclasses. This lead to criticals when instantiating Gio.DBusProxy. - Update to version 3.30.2: + tests: Fix some test with newer glib. + overrides: Fix crash when using non-ascii text with Gtk.Builder.add_from_string/add_objects_from_string. + Various meson/distutils build fixes for MSVC. + foreign-cairo: Fix cairo marshalling not using the foreign converters in some cases. + build: setup.py reproducible build fixes. ==== samba ==== Version update (4.9.1+git.101.212e237d8ef -> 4.9.3+git.113.3f6a4cdc269) Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libsamba-credentials0 libsamba-credentials0-32bit libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap2 libsmbldap2-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit - Update to samba-4.9.3 + CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD Internal DNS server; (bso#13600); (bsc#1116319); + CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT; (bso#13628); (bsc#1116320); + CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server; (bso#13674); (bsc#1116322); + CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers; (bso#13669); (bsc#1116321); + CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos configuration (unsupported); (bso#13678); (bsc#1116324); + CVE-2018-16857: Bad password count in AD DC not always effective; window; (bso#13683); (bsc#1116323); - Update to samba-4.9.2 + dsdb: Add comments explaining the limitations of our current backlink behaviour; (bso#13418); + Fix problems running domain backups (handling SMBv2, sites); (bso#13621); + testparm: Fix crashes with PANIC: Messaging not initialized on SLES 12 SP3; (bso#13465); + Make vfs_fruit able to cleanup AppleDouble files; (bso#13642); + File saving issues with vfs_fruit on samba >= 4.8.5; (bso#13646); + Enabling vfs_fruit looses FinderInfo; (bso#13649); + Cancelling of SMB2 aio reads and writes returns wrong error NT_STATUS_INTERNAL_ERROR; (bso#13667); + Fix CTDB recovery record resurrection from inactive nodes and simplify vacuuming; (bso#13641); + examples: Fix the smb2mount build; (bso#13465); + libtevent: Fix build due to missing open_memstream on Illiumos; (bso#13629); + winbindd_cache: Fix timeout calculation for sid<->name cache; (bso#13662); + dsdb encrypted_secrets: Allow "ldb:// and "mdb://" in file path; (bso#13653); + Extended DN SID component missing for member after switching group membership; (bso#13418); + Return STATUS_SESSION_EXPIRED error encrypted, if the request was encrypted; (bso#13624); + python: Allow forced signing via smb.SMB(); (bso#13621); + lib:socket: If returning early, set ifaces; (bso#13665); + ldb: Bump ldb version to 1.4.3, Python: Ensure ldb.Dn can accept utf8 encoded unicode; (bso#13616); + smbd: Fix DELETE_ON_CLOSE behaviour on files with READ_ONLY attribute; (bso#13673); + waf: Add -fstack-clash-protection; (bso#13601); + winbind: Fix segfault if an invalid passdb backend is configured; (bso#13668); + Fix bugs in CTDB event handling; (bso#13659); + Misbehaving nodes are sometimes not banned; (bso#13670); ==== swig ==== - Add swig-3.0.12-support-octave-4.4.patch to add support for octave 4.4; patch taken from upstream git (gh#swig/swig#1256). ==== systemsettings5 ==== Version update (5.14.3 -> 5.14.4) Subpackages: systemsettings5-lang - Update to 5.14.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.14.4.php - No code changes since 5.14.3 ==== vm-install ==== Version update (0.10.04 -> 0.10.05) - Testing a virt-install bug revealed a problem in vm-install when outputing an error message (bsc#1116990) - Version 0.10.05 ==== wireshark ==== Version update (2.6.4 -> 2.6.5) Subpackages: libwireshark10 libwiretap8 libwscodecs2 libwsutil9 wireshark-ui-qt - Wireshark 2.6.5 (bsc#1117740): * CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) * CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) * CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) * CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) * CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) * CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) * CVE-2018-19628: The ZigBee ZCL dissector could crash (wnpa-sec-2018-57) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.6.5.html -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org